SG Cyber Safe Programme
Cybersecurity Health Plan
Certification for the Cyber Essentials mark
Cyber Essentials
Organisations seeking certification may refer to the following:
(Note: Documents were last updated in August 2022)
The Cyber Essentials mark is published as Technical Reference 106 (TR 106) under the Singapore Standardisation Programme. Organisations may obtain a copy of TR 106:2022 “Tiered cybersecurity standards for enterprises” from the Singapore Standards e-shop.
Cyber Essentials for CMS Vendors
(Note: This is a sub-scheme of Cyber Essentials, and is applicable to Clinic Management Solution (CMS) vendors under the Ministry of Health CMS tiering framework.)
Note: Documents were last updated in February 2023
a. Certified Organisations
Small and Medium Enterprises (SMEs) that are certified are also eligible to apply for the SME Cybersecurity Excellence award that CSA is collaborating with Association of Trade & Commerce (ATC) on.
b. Appointed Certification Bodies
The certification process is undertaken by certification bodies that have been appointed by CSA. Organisations may approach any of the certification bodies, please click here for contact details.
c. Certification Duration and Mode of Assessment
The Cyber Essentials certification is valid for a duration of 2 years. The mode of assessment will involve desktop review and verification of the organisation’s self-assessment by an independent assessor from the appointed certification body.
Certification charges and the time needed for certification may differ according to the scope of the certification. Organisations may visit the websites of the certification bodies listed above to find out more.
d. Funding support for Cyber Essentials mark certification
To encourage organisations to adopt the Cyber Essentials mark, CSA has worked with the appointed certification bodies to offer funding support for Cyber Essentials mark certification. Organisations that are successfully certified^ can enjoy the following funding support, which will be deducted from the certification fees charged by the certification bodies:
| Quantity of End-points | Maximum Level of Funding Support from CSA* To be deducted from the certification fees charged by certification bodies |
1-10 | $250 |
| 11-20 | $350 |
| 21-50 | $450 |
| 51-100 | $500 |
| 101-200 | $550 |
* The following considerations applies to the funding support:
- Applicable only from now to 6 February 2026
- Applicable only for the first successful certification per organisation
- Only Singapore-registered businesses and Non-Profit Organisations (NPO) incorporated in Singapore are eligible
- Organisations shall submit their completed application forms to their selected certification bodies.
^ This funding support is also applicable to eligible organisations applying for sub-schemes of Cyber Essentials, e.g. Cyber Essentials for CMS Vendors
Organisations that are members of the National Council of Social Services (NCSS) are also eligible for subsidies from NCSS under the Tech-and-GO! consultancy programme.
e. Cybersecurity health plan delivered by CISO as-a-Service (CISOaaS) consultants
Ready to start your cybersecurity journey but lack in-house cybersecurity manpower? Cybersecurity consultants onboarded by CSA will take on the role of your “Chief Information Security Officer” (CISO), delivered as-a-Service, to improve your cyber resilience through cyber health “checkups”. You will develop a cybersecurity health plan tailored for your needs and work towards national cybersecurity certification such as attaining CSA’s Cyber Essentials mark.
Develop your cybersecurity health plan with your appointed CISOaaS consultant now. Funding support is available for eligible SMEs.
f. Cybersecurity toolkits and guidance to support certification
Need help with the cybersecurity measures you can implement to improve your organisation’s cybersecurity? Check out our cybersecurity toolkits for guiding questions, templates and more.
Added Benefit For Certified Organisations
- Cyber Insurance
Cyber Essentials certified organisations are eligible for discounted rates when they apply for cyber insurance with the following:
Please contact the companies listed for details.
- Google Cybersecurity Certificate Scholarship
Organisations that have already appointed a certification body for Cyber Essentials certification are eligible to be offered scholarships for the Google Cybersecurity Certificate. Please approach your appointed certification body for more information.
Additional information
- Interested in the Cyber Trust mark instead? Click here to learn more.
- Unsure about the different codes, cybersecurity or data certifications required for your organisation? Click here to learn more.
- If your organisation is using cloud services, get help with implementing cloud security for Software-as-a-Service (SaaS) and other cloud computing service models.
